Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
File: jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft (raw, json)
Hash identifier: qT1NhjUDEQv5BTTQ4U/xIbaPm2vagw7iuuMv1LPwoFU=
Subject key identifier: 95:1A:F8:66:6A:6B:3B:32:74:50:C4:0A:8C:73:58:EA:60:C9:30:04
Authority key identifier: 8E:79:CE:F4:58:DE:50:39:2E:3C:02:B6:91:82:F3:4C:60:14:8D:24
Certificate issuer: /CN=8e79cef458de50392e3c02b69182f34c60148d24
Certificate serial: 0199228CC8B365EF47140F015770A5E21160
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
Manifest number: 41
Signing time: Sun 07 Sep 2025 05:01:15 +0000
Manifest this update: Sun 07 Sep 2025 05:01:15 +0000
Manifest next update: Mon 08 Sep 2025 05:01:15 +0000
Files and hashes: 1: FjU0H7vPdjT4WlcuRh8u9jonq80.roa (hash: FVDMMIfr/P3OKDJ02oDTFPsyvxmI1cgf33doeyF5iQw=)
2: jnnO9FjeUDkuPAK2kYLzTGAUjSQ.crl (hash: 3Nkt13El7S1+J+o/thPlPTatWkX1qG7wXEjxmv8KsIA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8c:c8:b3:65:ef:47:14:0f:01:57:70:a5:e2:11:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e79cef458de50392e3c02b69182f34c60148d24
Validity
Not Before: Sep 7 05:01:15 2025 GMT
Not After : Sep 8 05:01:15 2025 GMT
Subject: CN=951af8666a6b3b327450c40a8c7358ea60c93004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:12:40:62:c3:0a:67:e6:07:43:4e:fd:36:1e:
15:09:53:c4:de:1f:7a:5c:71:98:7e:fa:13:c4:47:
a2:20:50:a8:32:86:e1:3a:a9:31:32:cf:9c:52:83:
c9:6c:5a:9e:e7:62:81:9a:62:24:fd:23:ae:b2:7e:
b2:34:18:8a:0d:e5:c2:32:9f:19:67:a1:72:cc:61:
0a:26:15:ec:6d:f4:91:ea:74:63:bf:a8:eb:06:72:
d3:82:08:53:09:a5:76:f5:03:55:de:55:0b:00:70:
24:33:dc:15:60:d4:de:ca:46:7b:c3:b7:8b:f5:53:
c9:e5:f1:89:27:43:d9:59:2b:39:77:94:bb:f1:c6:
6e:17:3b:ba:58:7f:aa:d1:c0:fd:60:03:74:17:69:
6e:47:43:47:e6:ae:26:53:06:23:f4:eb:20:3b:94:
72:99:3d:27:41:9a:aa:e9:7c:61:51:e4:1b:3f:8a:
2e:76:af:0e:19:cb:5a:46:f6:0c:3f:50:93:7c:8f:
32:94:a7:a9:d3:d5:d1:01:9e:0d:e1:28:f0:2f:bb:
47:1b:e3:a2:f7:76:53:4f:8e:5e:2e:42:9a:a8:42:
69:cc:bb:69:cf:e0:4c:6c:46:91:ae:b8:61:4b:53:
e7:7d:6d:85:3d:09:97:fa:41:00:ee:49:21:7c:e3:
24:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:1A:F8:66:6A:6B:3B:32:74:50:C4:0A:8C:73:58:EA:60:C9:30:04
X509v3 Authority Key Identifier:
keyid:8E:79:CE:F4:58:DE:50:39:2E:3C:02:B6:91:82:F3:4C:60:14:8D:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/334d54-4943-4deb-891c-cc1208148729/1/jnnO9FjeUDkuPAK2kYLzTGAUjSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:c0:15:b0:7c:36:87:0a:f8:f0:0e:1b:46:eb:97:77:61:4d:
29:10:19:43:5c:6a:2a:72:22:4a:90:65:fd:60:d9:5e:9f:21:
89:87:69:08:12:32:4c:49:65:f9:e3:5b:b9:8e:e1:db:f0:42:
78:bc:d8:1c:0d:b0:62:fe:73:c7:13:f4:d1:17:85:80:dc:dc:
a6:0b:5e:4d:c2:2b:b4:4d:d2:2e:dd:3d:90:86:6e:87:7c:e2:
c7:99:cd:ba:b2:30:a3:52:60:09:e1:55:9b:bb:2b:1a:b4:31:
2e:6b:8f:55:6d:a7:0d:3e:e5:ba:81:fa:04:49:f6:1c:7c:5b:
24:36:2f:dd:70:a7:e8:be:30:3d:d9:0d:9d:bd:63:bd:91:0a:
47:93:2b:9b:1b:e3:8c:cf:a5:64:d3:da:c0:05:4e:53:d3:4a:
a1:4d:2e:a3:08:57:71:1e:b0:ce:a2:86:d0:16:ab:d1:aa:ef:
8b:08:f8:62:a2:4d:dd:73:83:03:6a:51:8b:59:4d:4e:19:52:
75:8b:77:e3:9f:d0:69:e4:a1:eb:88:7c:5d:3b:7a:b6:ed:b9:
8a:e8:4c:12:5f:d6:17:e9:ca:c8:2d:3b:41:4c:eb:d9:ad:73:
ac:a5:c4:5c:15:d2:7e:f8:0b:81:3b:18:2a:58:d4:2d:f7:af:
d4:85:36:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:48 2025 by rpki-client